LACNICs RDAP Service

GTER 41- Uberlndia

May 2016
Agustn Formoso
@aguformoso | agustin@lacnic.net

The RDAP Protocol

The new whois
Drafts started in early 2012
WEIRDS WG

IETF standard since March 2015

RFCs 7480-7485

Usage of HTTP response codes

200, 4XX, 3XX

Standardized formats
Query

RESTful interface

Response
JSON format

The RDAP Protocol: RESTful Interface

Lookup
Object
IP

URL
/ip/<ip_adress>

Entity (users & orgs)

/entity/<entity_handle>

AS

/autnum/<as_number>

Nameserver

/nameserver/<nameserver>

Domain

/domain/<domain>

Searches
Object
Entities

URL
/entities/<ip_adress>

Nameservers

/entity/<entity_handle>

Domains

/autnum/<as_number>

RDAP deployment
RIRs
All five RIRs

The LAC region

NIC BR
Any others?

LACNICs RDAP service

Out of beta since December 2014
Based on RIPE NCC RDAP
Rising traffic J

LACNICs RDAP service

IP version traffic seen
30%

70%
v4

v6

LACNICs RDAP service

Kind of object queried
11%
18%
71%
IP

Entity

Autnum

LACNICs RDAP service

Kind of HTTP method seen
4%

GET

HEAD

96%
POST

OPTIONS

LACNICs RDAP service

Last 12 months:
13 M queries

Last April
1.4 M queries
Daily avg.: 46 K queries
Some suspicious traffic spikes

LACNICs RDAP service

Last 12 months

LACNICs RDAP service

Last 2 months

LACNICs RDAP service

Last 2 months

LACNICs RDAP service

Traffic comparisonnot bad!

API Keys
Additional query parameter
Uses LACNIC API Key services
API Key tokens used for rate limiting only
Defaults to 2 rate limits: 10 per minute and
1000 per hour, whichever is violated first
IP-based rate limits
Formal procedure for requesting a new API
Key (similar to bulk whois)

https://apikey.lacnic.net
http://www.lacnic.net/documents/10834/1535064/solicitud-rdap-beta-es.pdf

Temporary Cache
Additional query parameter
URL-based
24-hour object cache
cache=false bypasses cache, hits the
database, and refreshes the cache
Cache notification is added to the notices
attribute

RDAP Bootstrap
ARINs bootstrap (GitHub)
Out of the box Java application
Code collaboration from LACNIC

HTTP redirects are based on

IANA json files
Other RIRs

Custom LACNIC json files

Regional NICs (NIC.br)
https://github.com/arineng/rdap_bootstrap_server

RDAP Bootstrap
Authoritative RDAP server for IPv4
objects
10%
90%
LACNIC
AFRINIC

ARIN
RIPE

APNIC
NICBR

Use case
Analyzing our own logs file
IP address

Requests

Organization

RDAP

193.252.242.15 2.7M

100

Gestion des Adresse IP France

Telecom

RIPE

2001:19f0:700 1.5M
0:a0f9:5400:ff:f
e1e:5b39

55.5

Vultr Holdings, LLC

ARIN

200.7.84.2

530K

19.1

LACNIC - Latin American and

Caribbean IP address

LACNIC

204.193.144.4

400K

14.7

Quality Tech

2001:12ff:0:3::
99

350K

12.6

Ncleo de Inf. e Coord. do Ponto

BR - NIC.BR

NIC.BR

200.3.14.132

300K

10.7

LACNIC - Latin American and

Caribbean IP address

LACNIC

RDAP Web

RDAP Web

RDAP https://rdap.lacnic.net/rdap
RDAP Bootstrap https://rdap.lacnic.net/bootstrap
RDAP Web https://rdap.lacnic.net/rdap-web/
RDAP NIC.BR https://rdap.registro.br/
RFCs (IETF Tools) https://tools.ietf.org/wg/weirds/

THANKS!